Overview

overview

9

Static

static

1

3271bbdb49...67.elf

ubuntu-22.04-amd64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    3271bbdb49f6a5a4ad4cba1256e4805d1ada650f36e0086259bd9ab7d39f4667.elf

  • Size

    64KB

  • Sample

    241121-erhp7syaqe

  • MD5

    d75ffd62da3b5eb4fe3338a07522b57f

  • SHA1

    ebd1de41f2c916e6ea2fa012b29115cb915bebe9

  • SHA256

    3271bbdb49f6a5a4ad4cba1256e4805d1ada650f36e0086259bd9ab7d39f4667

  • SHA512

    22d8031c08c4b9366d20abc26e8f1f4dcde7ac7b89990c04f152bed3b81e185947bfe259df3018baad726145767d9d36fc0cd8a3303792cc42b5f37d680ba606

  • SSDEEP

    1536:v8fIhfwui9pfcS6xGQvmgd5NXJwuIu52oR3z:I6M99cXGwXJwuP5Rdz

Score
9/10
defense_evasiondiscoverylinux

Malware Config

Targets

    • Target

      3271bbdb49f6a5a4ad4cba1256e4805d1ada650f36e0086259bd9ab7d39f4667.elf

    • Size

      64KB

    • MD5

      d75ffd62da3b5eb4fe3338a07522b57f

    • SHA1

      ebd1de41f2c916e6ea2fa012b29115cb915bebe9

    • SHA256

      3271bbdb49f6a5a4ad4cba1256e4805d1ada650f36e0086259bd9ab7d39f4667

    • SHA512

      22d8031c08c4b9366d20abc26e8f1f4dcde7ac7b89990c04f152bed3b81e185947bfe259df3018baad726145767d9d36fc0cd8a3303792cc42b5f37d680ba606

    • SSDEEP

      1536:v8fIhfwui9pfcS6xGQvmgd5NXJwuIu52oR3z:I6M99cXGwXJwuP5Rdz

    Score
    9/10
    defense_evasiondiscovery

    • Contacts a large (76764) amount of remote hosts

      This may indicate a network scan to discover remotely running services.

      discovery

    • Creates a large amount of network flows

      This may indicate a network scan to discover remotely running services.

      discovery

    • Modifies Watchdog functionality

      Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.

      defense_evasion
    behavioral1

MITRE ATT&CK Enterprise v15

Tasks